Drata’s compliance dashboard

Review existing research

I started by reviewing existing research across Gong, Slack, and internal documentation to understand what wasn’t working with the existing dashboard. While Drata hadn’t consistently grounded projects in user problems before, I wanted to ensure we were solving the right one.

Through this investigation, I aligned with leadership on a shared definition: a dashboard should highlight what needs attention and make it easy to act. For our Compliance Manager persona—especially in SMB and Mid-Market segments—the primary goal is maintaining audit readiness.

This insight led to a clear hypothesis: We needed an operational dashboard—one that immediately flags issues and enables fast resolution.

Audit existing dashboard

I audited Drata’s current dashboard to evaluate how well it met the core user need: “show me what I need to fix.”

What I found was a largely non-operational experience. Aside from prompting users to fix integrations, most of the content duplicated navigation elements or surfaced low-value metrics—offering little actionable insight for compliance managers.

Usability testing

Following contextual inquiry, I designed and tested multiple dashboard iterations focused on key user jobs:

• Seeing audit readiness by framework
• Identifying which tests need fixing
• Prioritizing upcoming tasks
• Understanding the overall state of their compliance program

Each version was reviewed with engineers, internal users, and leadership to ensure alignment and effectiveness.

• Compliance work is largely tactical—managing and preventing failures.
• Cumulative failures lack context and aren't helpful for assessing progress.
• Users need to understand why something changed to take meaningful action.
• Prioritized, grouped data enables more efficient workflows.
• Drata is often used reactively, triggered by email or Slack notifications.

Readiness overview

A dedicated section showing real-time progress across compliance frameworks (e.g., SOC 2, HIPAA, ISO 27001). Users can drill down directly into problem areas, with reduced clicks, making it faster to identify and resolve issues that impact audit readiness.

Test trends

Visualizes current and historical test failures, helping users spot new issues quickly and prioritize them accordingly. Clicking into a failing test category takes users straight to the test details, streamlining remediation and reinforcing a tactical, fix-first workflow.

Task forecast

Surfaces upcoming tasks directly on the dashboard, helping Compliance Managers anticipate what’s next without having to dig. This forward-looking view reduces navigation friction and supports proactive compliance operations.

Stat widgets

Quick-glance metrics for essential compliance categories—like policy status, vendor risk, personnel compliance, and system connections. Each widget links directly to the relevant section, enabling users to resolve issues with minimal friction.

Responsiveness

The compliance dashboard was designed responsively to support GRC team members who often check Drata from their phones before starting their day. By ensuring the experience worked seamlessly on mobile, compliance leaders could quickly see priorities, troubleshoot key issues, and decide where to focus — all before opening their laptop.